(Damn
Vulnerable Windows XP: Lesson 8)

This is a Windows XP Virtual Machine that
provides a practice environment to conduct ethical penetration
testing, vulnerability assessment, exploitation and forensics
investigation.

The Microsoft Software License Terms for
the IE VMs are included in the release
notes.

By downloading and using this
software, you agree to these license
terms.

What is
OllyDbg v1.10 x86 Debugger?

OllyDbg (named after its author, Oleh
Yuschuk) is an x86 debugger that emphasizes binary code analysis, which
is useful when source code is not available. It traces registers,
recognizes procedures, API calls, switches, tables, constants and
strings, as well as locates routines from object files and libraries.

OllyDbg is often used for reverse
engineering of programs. It is often used by crackers to crack
software made by other developers. For cracking and reverse engineering,
it is often the primary tool because of its ease of use and
availability; any 32-bit executable can be used by the debugger and
edited in bitcode/assembly in realtime. It is also useful for
programmers to ensure that their program is running as intended, and for
malware analysis purposes.

This is a Pre-Requisite Lesson that will be
used to illustrate future buffer overflow analysis.

Lab Notes

In this lab we will do the following:

Download
OllyDbg v1.10 x86 Debugger

Install
OllyDbg v1.10 x86 Debugger

Legal Disclaimer

As a condition of your use of this Web
site, you warrant to computersecuritystudent.com that you will not use
this Web site for any purpose that is unlawful or
that is prohibited by these terms, conditions, and notices.

In accordance with UCC § 2-316, this
product is provided with "no warranties, either express or implied." The
information contained is provided "as-is", with "no guarantee of
merchantability."

In addition, this is a teaching website
that does not condone malicious behavior of
any kind.

You are on notice, that continuing
and/or using this lab outside your "own" test environment
is considered malicious and is against the law.